Diferencia entre revisiones de «Notas de Moodle 2.8.11»

De MoodleDocs
(updated as DEV page)
(updated as per DEV Docs)
 
Línea 12: Línea 12:


===Asuntos de seguridad===
===Asuntos de seguridad===
A number of security related issues were resolved. Details of these issues will be released after a period of approximately one week to allow system administrators to safely update to the latest version
 
* [https://moodle.org/mod/forum/discuss.php?d=330173 MSA-16-0003] Incorrect capability check when displaying users emails in Participants list
* [https://moodle.org/mod/forum/discuss.php?d=330174 MSA-16-0004] XSS from profile fields from external db
* [https://moodle.org/mod/forum/discuss.php?d=330175 MSA-16-0005] Reflected XSS in mod_data advanced search
* [https://moodle.org/mod/forum/discuss.php?d=330176 MSA-16-0006] Hidden courses are shown to students in Event Monitor
* [https://moodle.org/mod/forum/discuss.php?d=330177 MSA-16-0007] Non-Editing Instructor role can edit exclude checkbox in Single View
* [https://moodle.org/mod/forum/discuss.php?d=330178 MSA-16-0008] External function get_calendar_events return events that pertains to hidden activities
* [https://moodle.org/mod/forum/discuss.php?d=330179 MSA-16-0009] CSRF in Assignment plugin management page
* [https://moodle.org/mod/forum/discuss.php?d=330180 MSA-16-0010] Enumeration of category details possible without authentication
* [https://moodle.org/mod/forum/discuss.php?d=330181 MSA-16-0011] Add no referrer to links with _blank target attribute
* [https://moodle.org/mod/forum/discuss.php?d=330182 MSA-16-0012] External function mod_assign_save_submission does not check due dates


==Vea también==
==Vea también==

Revisión actual - 18:22 21 mar 2016

Nota: Esta es una traducción de una página de la documentación para desarrolladores (Developer docs), que se considera particularmente importante, y que en su versión original se actualiza frecuentemente. Por ello, se le recomienda que revise la página original en idioma inglés: Moodle 2.8.10 release notes.

Moodle 2.8


Nota: Esta versión de Moodle ya no está soportada. Se le recomienda hacer una Actualización a una versión soportada de Moodle.


Historia de las versiones > Notas de Moodle 2.8.11

Fecha de liberación: 14 marzo 2016

Aquí está la lista completa de problemas corregidos en 2.8.11.

Asuntos de seguridad

  • MSA-16-0003 Incorrect capability check when displaying users emails in Participants list
  • MSA-16-0004 XSS from profile fields from external db
  • MSA-16-0005 Reflected XSS in mod_data advanced search
  • MSA-16-0006 Hidden courses are shown to students in Event Monitor
  • MSA-16-0007 Non-Editing Instructor role can edit exclude checkbox in Single View
  • MSA-16-0008 External function get_calendar_events return events that pertains to hidden activities
  • MSA-16-0009 CSRF in Assignment plugin management page
  • MSA-16-0010 Enumeration of category details possible without authentication
  • MSA-16-0011 Add no referrer to links with _blank target attribute
  • MSA-16-0012 External function mod_assign_save_submission does not check due dates

Vea también

Obtenido de «https://docs.moodle.org/all/es/index.php?title=Notas_de_Moodle_2.8.11&oldid=38879»
Powered by MediaWiki